On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
Score pertinence: 100/100
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come under active exploitation in the wild.
The vulnerability, tracked as CVE-2026-42897 (CVSS score: 8.1), has been described as a spoofing bug stemming from a cross-site scripting flaw. An anonymous researcher has been credited with discovering and reporting the issue.
«
Source: Flux RSS
![[Cybersécurité] On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email](https://cyber.kiminox.net/wp-content/uploads/2024/10/cybersecurity_img2-900x900.png)